Drupal · Drupal · CVE-2006-4717
**Name of the Vulnerable Software and Affected Versions**
Drupal 4.7 Pubcookie module versions prior to 1.2.2.4
Drupal 4.6 Pubcookie module versions prior to 1.6.2.1
**Description**
The login redirection mechanism in the Pubcookie module allows remote attackers to bypass authentication requirements and spoof identities of arbitrary users via unspecified vectors.
**Recommendations**
For Drupal 4.7 Pubcookie module versions prior to 1.2.2.4, update to version 1.2.2.4 or later.
For Drupal 4.6 Pubcookie module versions prior to 1.6.2.1, update to version 1.6.2.1 or later.